Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/sapcc/image-pull-secret-injector

A mutating webhook server to inject pull secrets into new pods.
https://github.com/sapcc/image-pull-secret-injector

Last synced: 11 days ago
JSON representation

A mutating webhook server to inject pull secrets into new pods.

Host: GitHub
URL: https://github.com/sapcc/image-pull-secret-injector
Owner: sapcc
License: apache-2.0
Created: 2020-09-04T13:04:05.000Z (about 4 years ago)
Default Branch: master
Last Pushed: 2023-12-15T02:49:46.000Z (11 months ago)
Last Synced: 2023-12-15T03:55:54.594Z (11 months ago)
Language: Go
Size: 47.9 KB
Stars: 3
Watchers: 33
Forks: 2
Open Issues: 2
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

        Pull secret injector

====================

This repository contains a very simple mutating webhook server that injects image pull secrets into new pods.

For now it injects a static image pull secret into all pods that reference a docker hub image and have no pull secret specified.

The injector takes care of syncing the pull secret to the namespace of the modified pod.

Why ?

=====

Now that Docker has introduced rather strict rate limiting for anonymous pulls this ensures all docker hub images are pulled using an authenticated (payed) account.

Requirements

============

For the example deployment (`make deploy`) the following requirements need to be considered

  * A rather new kustomize binary locally in the PATH

  * cert-manager needs to be installed in the cluster (for the automatic webhook tls setup)